That report makes eight recommendations, including a suggestion that “the U.S. Attorney General should publish a best practices guide for private sector employers to avoid being in conflict with the law” as it pertains to sharing information related to infrastructure vulnerabilities; and a recommendation that DHS and other federal entities should “rationalize and standardize the use of SBU markings, especially “For Official Use Only” (FOUO), and publish standard handling instructions clearly for all intended recipients.”